{
generate_configuration
- procd_open_instance
- procd_set_param command "$FWKNOPD_BIN" --foreground --syslog-enable
- procd_set_param respawn
-
- if [ $UCI_ENABLED -eq 1 ]; then
- procd_append_param command -c /var/etc/fwknopd.conf
- procd_append_param command -a /var/etc/access.conf
+ if [ -n "$DEPEND_IFNAME" ] ; then
+ # We know the interface, so we can start
+ procd_open_instance
+ procd_set_param command "$FWKNOPD_BIN" --foreground --syslog-enable
+ procd_set_param respawn
+ if [ $UCI_ENABLED -eq 1 ]; then
+ procd_append_param command -c /var/etc/fwknopd.conf
+ procd_append_param command -a /var/etc/access.conf
+ fi
+ procd_append_param command -i "$DEPEND_IFNAME"
+ procd_set_param netdev "$DEPEND_IFNAME"
+ procd_close_instance
+ else
+ logger -p daemon.info -t "fwknopd[----]" "Postponing start-up of fwknopd, network $NETWORK is not up"
fi
-
- procd_append_param command -i "$DEPEND_IFNAME"
- procd_set_param netdev "$DEPEND_IFNAME"
-
- procd_close_instance
}
service_triggers()
{
procd_add_reload_trigger "fwknopd"
+
+ if [ -n "$NETWORK" ] ; then
+ logger -p daemon.info -t "fwknopd[----]" "Listening for changes on network $NETWORK"
+ procd_add_reload_interface_trigger "$NETWORK"
+ fi
}
get_bool()
UCI_ENABLED=0
DEPEND_IFNAME=
- local NETWORK=
+ NETWORK=
local PCAP_INTF=
local USER_CONFIG_PATH=/etc/fwknop/fwknopd.conf
local DEFAULT_UCI_NETWORK=wan
if [ "$option" = "uci_enabled" ] && [ "$(get_bool "$value" 0)" -eq 1 ] ; then
> /var/etc/fwknopd.conf
> /var/etc/access.conf
- chmod 600 /var/etc/fwknopd.conf
- chmod 600 /var/etc/access.conf
+ chmod 600 /var/etc/fwknopd.conf
+ chmod 600 /var/etc/access.conf
UCI_ENABLED=1
+
+ # Forced defaults
+
+ # Do not let fwknopd to shut-down when interface goes down,
+ # control it from the start-up script instead:
+ # https://bugs.openwrt.org/index.php?do=details&task_id=1481
+ echo "EXIT_AT_INTF_DOWN n" >> /var/etc/fwknopd.conf
fi
}
elif [ "$type" = "network" ]; then
if [ $UCI_ENABLED -eq 1 ] && [ $option = "PCAP_INTF" ]; then
PCAP_INTF="$value"
echo "$option $value" >> /var/etc/fwknopd.conf #writing each option to fwknopd.conf
+ elif [ $UCI_ENABLED -eq 1 ] && [ $option = "EXIT_AT_INTF_DOWN" ]; then
+ logger -p daemon.warn -t "fwknopd[----]" "Ignoring EXIT_AT_INTF_DOWN option, forced to N (no) to work reliably with procd"
elif [ $UCI_ENABLED -eq 1 ]; then
echo "$option $value" >> /var/etc/fwknopd.conf #writing each option to fwknopd.conf
fi
}
- elif [ "$type" = "access" ]
- then
+ elif [ "$type" = "access" ]; then
if [ -f /tmp/access.conf.tmp ] ; then
cat /tmp/access.conf.tmp >> /var/etc/access.conf
rm /tmp/access.conf.tmp
fi
}
else
- option_cb() { return; }
+ reset_cb
if [ -z "$type" ]; then
# Finalize reading
if [ -f /tmp/access.conf.tmp ] ; then
if [ $UCI_ENABLED -eq 0 ]; then
if [ -f $USER_CONFIG_PATH ] ; then
- # Scan user configuration for PCAP_INTF settings
- DEPEND_IFNAME="$( sed -ne '/^\s*PCAP_INTF\s\+/ { s/^\s*PCAP_INTF\s\+//; s/\s\+$//; p; q; }' /etc/fwknop/fwknopd.conf )"
+ # Scan user configuration for PCAP_INTF settings and fallback to fwknopd's default
+ DEPEND_IFNAME="$( sed -ne '/^\s*PCAP_INTF\s\+/ { s/^\s*PCAP_INTF\s\+//; s/\s\+$//; p; q; }' $USER_CONFIG_PATH )"
if [ -n "$DEPEND_IFNAME" ]; then
logger -p daemon.debug -t "fwknopd[----]" "Found fwknopd.conf configuration, using PCAP_INTF interface $DEPEND_IFNAME"
else
NETWORK="$DEFAULT_UCI_NETWORK"
fi
+ # Resolve network if possible
if [ -n "$NETWORK" ]; then
. /lib/functions/network.sh
- network_get_physdev DEPEND_IFNAME "$NETWORK"
+ network_get_device DEPEND_IFNAME "$NETWORK"
if [ -n "$DEPEND_IFNAME" ]; then
logger -p daemon.debug -t "fwknopd[----]" "Resolved network $NETWORK as interface $DEPEND_IFNAME"
else
- logger -p daemon.warn -t "fwknopd[----]" "Cannot find interface for network $NETWORK, fwknopd's default $DEFAULT_FWKNOPD_IFNAME will be used"
- DEPEND_IFNAME="$DEFAULT_FWKNOPD_IFNAME"
+ logger -p daemon.warn -t "fwknopd[----]" "Cannot find interface for network $NETWORK, probably the network is not up"
fi
elif [ -n "$PCAP_INTF" ]; then
DEPEND_IFNAME="$PCAP_INTF"
projects / feed / packages.git / commitdiff